Computer Problems? Computing.Net has over 1,000,000 posts about all things technology related! Over 90% answered within 24 hours! Click here to start participating now! Also, be sure to check out the New User Guide.
iptraf vs. tcpdump, arp
Name: Dan Date: November 9, 2000 at 14:27:07 Pacific
Comment:
(1) RedHat 7: on the Internet gateway, iptraf and mrtg shows over 100 KBytes/s inbound traffic on eth1. Which is right. Well, on the same interface, tcpdump -i eth1 (with no other parameters), shows a very low packet count. Could be any explanation to that? (2) How could be identifies the host from the MAC addres captured by iptraf, but not visible with arp. Thank you, for any clue! Thank you!
Name: marsd Date: November 19, 2000 at 16:25:12 Pacific
Reply:
Read somewhere that iptraf uses an obsolete socket polling method, or something along those lines. Do a search on iptraf and I think you will see the article I mean. I would try installing arpwatch and compare that to Iptraf. Also ,have you verified any of these readings through netstat? Try tcpdump -p eth1, tcpdump -v and -vv, etc, going through info tcpdump and looking for likely hangups.
Summary: Hi all. I've been a lurker here and this is the first time I post anything, so any help is appreciated. I'm a longtime Windows user who recently considering getting Linux OS for my computer. However, ...
Summary: I'm writing a school report on MAC OSX vs Linux. Just a few questions: I've heard that since MAC OSX derives from unix that MAC OSX can run linux programs. Is this true? If so can Linux run OSX pro...
Summary: Hi, I am working on a network that uses proxy ARP. It is currently working as it should, but I would like to know if anyone has experience making the router machine operate without an IP. I've been ...
0 
